Quote:
|
Originally Posted by skaven
Running on port 28 doesn't really add any security to your system...that's called "security by obscurity". This is the same security model Microsoft uses, and we all see how effective <i>that</i> is. If somebody wants to hack your box, all it takes is a quick port scan to figure out you're running an FTP server on port 28 rather than 21. Just run the server on port 21 and make sure you've got everything covered.
|
While I can't agree more that this kind of security by obscurity is no excuse for real security practices, I disagree with running it on port 21. Even though a hacker could figure you out by running a port scanner, most don't scan the entire 1-65536 possibe port range. Running your server on one of these other non-obvious ports is a sure-fire way to eliminate a good percentage of would be hackers.
No matter how secure your facility is, its always a good practice not to let anyone know you're there.